Re: HEUR:Trojan.script.lframer

Hi!

1. Its an heuristic detection of a trojan diffusing via web browsing. There potentially thousands of variations. So impossible to say what it does. Trojans can steal private information, accounts, private info, make your PC a zombi to spam, etc...

2. It did otherwise you would be infected . It can be also a false positive. Heuristic can have false positives. Also its good norm you actually post the exact location and name of the file.

If you have ZA Extreme I would recommend you turn ON virtualization. If you have then you perfectly protected.

Cheers,
Fax
P.S. and no, super scan every week? Way too much, you will become a slave of your security tool. Just keep ZAX always updated and active and you will not need such scans. May be in months not weeks. Keep the recommended settings.

Re: HEUR:Trojan.script.lframer

One thing I did find interesting is the folder "Temporary Internet Files" in that particular path is set as a system folder and would not show up until I modified the setting to show all hidden and system folders. That folder is not considered a system folder under guest and shared users.

I thought I had checked "Enable Virtualization" but after your suggestion wanted to verify and found that it was not checked. It is now.

I guess I was expecting Zone Alarm to not even allow the trojan to download to my hard drive but the scan caught it so I should be okay.